[Pkg-gnupg-maint] Bug#775559: Bug#775559: gnupg2: New default hashing (SHA256) signing fails with cryptostick/nitrokey (storage version)

Daniel Kahn Gillmor dkg at fifthhorseman.net
Wed Jan 21 01:26:43 UTC 2015

Hi Luca--

On Sat 2015-01-17 06:55:47 -0500, Luca Bruno wrote:
> With the latest gnupg2 package targeted for the Jessie, defaulting hashing
> algorithm has been changed to SHA256. This broke my smartcard setup using a
> cryptostick/nitrokey (storage version, latest 0.18 firmware) as signing now fails with:
> $ gpg --armor -s pippo.txt 
> gpg: sending command `SCD PKSIGN' to agent failed: ec=6.32817
> gpg: signing failed: general error
> gpg: signing failed: general error

Thanks for reporting this.  I don't have a cryptostick/nitrokey, so i
can't debug it myself, but I agree that it would be nice to make this
work by default, ideally by making the cryptostick/nitrokey make sha256
signatures as desired.

If you can narrow down what needs fixing, please post it to this bug

it seems likely that this report should be reassigned to scdaemon or
pcsc, depending on where the problem lies.



More information about the Pkg-gnupg-maint mailing list